|Applies To||RSA Product Set: Security Analytics|
RSA Product/Service Type: SA Security Analytics Server
RSA Version/Condition: 10.6.x
O/S Version: 6
|Issue||SA server fails to send any notification email even after configuring Global Notification with the correct SMTP setting.|
Mail server is configured to accept only FQDN but monitoring the packets with tcpdump shows that SA server sends hostname instead of FQDN in EHLO response as shown below.
e.g. TestServer is shown instead of TestServer.test.local
05:34:23.842234 IP x.x.x.x.42635 > 10.106.48.137.25: Flags [P.], seq 1:18, ack 115, win 115, length 17
|Resolution||By default, postfix uses the hostname of the SA server in EHLO response.|
In order to resolve the issue, follow the User Guide to change the hostname of the SA server to FQDN.
After following the User Guide to change the hostname, please modify /etc/puppet/csr_attributes.yaml on the SA server to update the hostname with FQDN and reboot the SA server host.